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(54) System and method for packet level distributed routing in fiber optic rings 



(57) IP user traffic is transporting over a fiber optic 
ring network that includes a plurality of fiber optic ring 
network nodes. One (108) ring is for conducting the 
user traffic on a working path and the other ring (1 1 0) is 
for conducting the same user traffic on a protection path 
in the event of a failure in a communication link in the 
first ring on a protection path. A central node (300) is 
coupled to a plurality of nodes (312, 316, 320) to pro- 
vide forwarding tables and updates to the nodes (312, 
316, 320). As a result, IP traffic may be routed through 
the fiber optic ring network in a manner that provides 
fast switching from a working path to a protection path to 
minimize lost data packets whenever a communication 
link in the working path fails. Additionally, this capability 



is provided without requiring each node to have full IP 
routing capability. The forwarding tables (308) for the 
protection and working paths provide for path routes 
and forwarding for the packets on a packet by packet 
basis. Accordingly, a ring may serve as both a working 
path and a protection path according to the origin and 
destination of the data packets traveling thereon. Addi- 
tionally, the central node (300) is adapted to generate 
multiple forwarding tables (308) to accommodate packet 
by packet forwarding in a network created to support vir- 
tual private networks. The forwarding tables (308) also 
are set up to support multicast transmissions of data 
packets. 




FIG. 3 



F-O RING ' 
NETWORK 
NODE 



iForwardingl 
I Tabte J- 



340 



Q_ 
LU 



Printed by Xerox (UK) Business Services 
2.16.7 (HRS)/3.6 



1 



EP 1 083 696 A2 



2 



Description 

CROSS REFERENCE TO RELATED APPLICATIONS 

[0001] This application is related to and includes by 
reference the following application in its entirety, said 
application being concurrently filed herewith this appli- 
cation: 

Title: SYSTEM AND METHOD FOR 

PACKET LEVEL RESTORATION OF 
IP TRAFFIC USING OVERHEAD 
SIGNALING IN A FIBER OPTIC 
RING NETWORK 

Inventors: Ram Dantu, Gary Ester, Pete O'Con- 

nell 

Filing Date: Concurrent 
Serial Number: 09/393,747 

BACKGROUND 

[0002] The present invention relates generally to 
data transmission in fiber optic ring networks, by way of 
example, the synchronous optical networks, (SONET 
networks) and Synchronous Digital Hierarchy networks 
(SDH networks) and more particularly, to the routing of 
IP data packets through the fiber optic ring networks 
including SONET and SDH networks. 

Related Art 

[0003] New networks and information exchange 
capabilities that were unimaginable even in recent times 
are being developed and implemented in a way that 
impacts businesses and individuals in a significant way. 
For example, standalone computers may now be inte- 
grated with wireless radio telephones to allow the trans- 
mission of information from the computer to a 
destination by way of a wireless communication network 
and then by way of the internet. 

[0004] The recent explosion of the internet is creat- 
ing the capability and desire for networks of all types to 
be integrated and coupled to exchange data signals car- 
rying the varying types of information. In many cases, 
the same data also will also be transported through a 
local area network (LAN) prior to being delivered to the 
internet. Thus, by way of example, a digitized signal can 
be transported from a source through a LAN and 
through the internet, to a final destination. Moreover, 
within the internet portion itself, there may be a need to 
transport the user data through a backbone data trans- 
port infrastructure, by way of example, through a fiber 
optic ring network. 

[0005] Generally speaking, the Internet is, in 
essence, a collection of many large and small computer 
networks that are coupled together over high speed 
backbone data links such as T-1, T-3, OC-1 and OC-3. 
Stated differently, the internet is a network of networks. 



As a result of the creation of the Internet, worldwide 
access may be achieved. People and their equipment 
may now communicate from most any civilized point to 
another in a fast and relatively inexpensive medium. 
5 [0006] While it is popular to think of the internet as 
one network of networks, there are other such internets 
that are in existence and that are under development. 
For example, the network now commonly known as the 
internet was originally a network of institutional net- 
to works including university networks. As a result of the 
commercialization of the internet and the resultant 
reduction in quality of service, new generation internet 
type networks are under development to better achieve 
the purposes of the original "internet". Moreover, new 
15 international standards and protocols are being 
approved to create additional and enhanced internets. 
For the sake of simplicity, however, each of the world- 
wide internet networks will be referred to collectively as 
the internet. 

20 [0007] Regarding its physical aspects, the internet 
is a packet switched network that is currently based 
upon a group of protocols known as transmission con- 
trol protocol/internet protocol (TCP/IP). TCP is a con- 
nection-oriented protocol that first establishes a 

25 connection between two computer systems that are to 
exchange data. TCP then breaks a given digital infor- 
mation signal into packets having a defined format. The 
packets are then attached to headers that are for con- 
taining control and address information. 

30 [0008] For example, in addition to a destination 
address, a TCP packet typically contains a sequence 
number that is to be used by the destination in recon- 
structing a signal that is similar to the original digital 
information that was broken into packets at the originat- 

35 ing end. TCP packets also typically include port IDs, 
checksum values and other types of control information 
as is known by those skilled in the art. 
[0009] IP protocol is used for routing purposes. 
Thus, the IP protocol includes the destination and origi- 

40 nating addresses and default gateway identifiers. IP 
routers, therefore, are operable to evaluate IP protocol 
information for routing an IP data packet and to evaluate 
TCP protocol information for error control and other sim- 
ilar purposes. 

45 [0010] In order to make communication devices 
created by companies throughout the world compatible 
with each other to create local area networks and world- 
wide networks such as the internet, protocols and 
standards are often defined. These protocols and 

50 standards are used to guide the design of the communi- 
cation devices, and more specifically, to guide the 
design of the operating logic and software within the 
devices. While communication devices that are 
designed in view of these standards do not always fol- 

55 low the suggested models exactly, they are usually com- 
patible with the protocol-defined interfaces (physical 
and logical). In order to appreciate the construction and 
operation of many devices, it is important to generally 
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understand the concepts of some of the significant pro- 
tocol standards and models. 

[0011] One important model that currently guides 
development efforts is the International Standards 
Organization (ISO) Open Systems Interconnection 
(OSI) model. ISO/OSI provides a network framework or 
model that allows equipment from different vendors to 
communicate with each other. The OSI model organ- 
izes the communication process into seven different cat- 
egories or layers and places these layers in a sequence 
based on their relation to the user. Layers 1 through 3 
deal provide actual network access and control. Layers 
4 through 7 relate to the point to point communications 
between the message source and destination. 
[0012] More specifically, the seven layers in the OSI 
model work together to transfer communication signals 
through a network. Layer 1 includes the physical layer 
meaning the actual hardware that transmits currents 
having a voltage representing a bit of information. Layer 
1 also provides for the functional and procedural char- 
acteristics of the hardware to activate, maintain, and 
deactivate physical data links that transparently pass 
the bit stream for communication between data link enti- 
ties. Layer 2 is the data link layer or the technology spe- 
cific transfer layer that effectuates and controls the 
actual transmissions between network entities. For 
example, layer 2 provides for activation, maintenance, 
and deactivation of data link connections, character and 
frame synchronization, grouping of bits into characters 
and frames, error control, media access control and 
flow control. 

[001 3] Layer 3 is the network layer at which routing, 
switching and delaying decisions are made to create a 
path through a network. Such decisions are made in 
view of the network as a whole and of the available com- 
munication paths through the network. For example, 
decisions as to which nodes should be used to create a 
signal path are decided at layer 3. As may be seen, lay- 
ers 1 , 2 and 3 control the physical aspects of data trans- 
mission. 

[0014] While the first three layers control the physi- 
cal aspects of data transmission, the remaining layers 
relate more to communication functionality. To illustrate, 
layer 4 is the transport layer that defines the rules for 
information exchange and manages the point to point 
delivery of information within and between networks 
including providing error recovery and flow control. 
Layer 5 is the session layer that controls the basic com- 
munications that occur at layer 4. Layer 6 is the presen- 
tation layer that serves as a gateway (a type of 
"software" interface) between protocols and syntax of 
dissimilar systems. Layer 7 is the application layer that 
includes higher level functions for particular application 
services. Examples of layer 7 functions include file 
transfer, creation of virtual terminals, and remote file 
access. 

[0015] Each of the above defined layers are as 
defined by the OSI model. While specific implementa- 



tions may vary from what is defined above, the general 
principles are followed so that dissimilar devices may 
communicate with each other. 

[0016] With respect to the forgoing discussion 
5 regarding the seven OSI layers, IP is a layer three pro- 
tocol. In contrast, many of the backbone data transport 
infrastructures utilize a different layer protocol than an 
internet router. 

[0017] Many of the common backbone data trans- 
w port systems utilized include time division multiplexed 
(TDM) double ring transmission systems. Double ring 
TDM systems are generally known, especially for fiber- 
optic communication networks. In order to maintain 
transmission in the event of a fault on one of the chan- 
ts nels or communication links, it is typically common to 
find ring transmission systems in which transmissions 
occur in two directions. Specifically, transmissions occur 
in one direction through all of the nodes in the ring in a 
working path and through an opposite direction in a pro- 
20 tection path. The protection path is, traditionally, a 
redundant path for transmitting signals in a failure con- 
dition. Examples of fiber optic TDM systems include the 
SONET and SDH double ring fiber optic communication 
systems used in North America and Europe, respec- 
25 tively. 

[0018] In ordinary conditions, either the user traffic 
(data) in the redundant path in these double ring sys- 
tems is not routed through the protection path or, alter- 
natively, it is routed but is not processed by a 

30 destination. At the same time, its communication chan- 
nels are reserved as an alternate path during failure 
conditions. The redundant path is typically used to route 
the data signals in an opposite direction from the work- 
ing path so that data that is to be routed to a destination 

35 node located, "downstream" from the failure condition 
may still be delivered to the destination node. 
[0019] One problem with this approach, however, is 
that the capacity of the redundant ring must be reserved 
as a redundant path. Transmission efficiency arid 

40 throughput capacity must be sacrificed to provide data 
protection. Additionally, error conditions that prompt a 
node to switch to the protection path often are related to 
hardware (layer 1) problems in which communications 
are not being successfully transmitted in a communica- 

45 tion link. Switching does not occur for those conditions 
in which switching may be desirable even if there is not 
a hardware related error. For example, switching might 
be desirable to alleviate user traffic congestion. 
[0020] Additionally, several challenges exist in 

so implementing dual ring topologies. For example, it is 
necessary for the switching from the working path to the 
protection path to occur quickly in the event of a fault so 
that a minimal amount of information is lost. Typically, 
switching occurs at the layer 1 level to minimize the 

55 down time. As a result, however, little error protection is 
provided at the hardware level for failures. Additionally, 
layer 1 switching results in the switching of entire data 
transport pipelines. By way of example, a typical pipe- 
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line that is switched as a result of a layer 1 switching 
decision and event is either a 155 mega bits per second 
(Mbps), 622 Mbps or 2.4 giga bits per second (Gbps) 
pipeline. 

[0021] To accomplish fast switching, layer 1 over- 5 
head signaling messages are generated and transmit- 
ted back to the ingress node (among other nodes) 
identifying the fault condition so that the protection 
switching may occur quickly. More specifically, layer 1 
overhead signaling messages are transmitted by the 10 
nodes detecting the error (typically the two nodes on 
either traffic side of the detected problem) on a commu- 
nication link so that the ingress node may effectuate the 
change on a quick basis. Typically, the ingress node 
includes dedicated circuitry for reading, interpreting and 15 
quickly responding to the overhead signaling message 
to effectuate a change. As is implied by the foregoing 
discussion, the overhead signaling is set upon the 
occurrence of a significant hardware failure in a commu- 
nication link. 20 
[0022] Historically, delays that are encountered in 
the internet have been acceptable, though not well 
liked, in the context of computer to computer communi- 
cations. As other types of data are transported over the 
internet, by way of example, either voice or video, there 25 
will be a need for transporting data in large quantities in 
a quick manner. There is, therefore, an increasing need 
for integrating internet communication networks with 
fiber optic ring networks utilizing a TDM protocol for 
transporting data because of the speed and throughput 30 
capacity of fiber optic ring networks. Accordingly, there 
is a need for a fiber optic ring network node that is capa- 
ble of reliably and quickly transporting user traffic to and 
from the internet. Additionally, however, there also is a 
need to implements systems that accomplish these 35 
goals economically. 

Summary of the Invention 

[0023] To overcome the shortcomings of the prior 40 
systems and their operations, the present invention con- 
templates a fiber optic ring network that includes a plu- 
rality of fiber optic ring networks that provide routing of 
IP traffic. User traffic may be conducted on a working 
path or on a protection path in the event of a communi- 45 
cation link failure in the working path. A central node is 
coupled to a plurality of nodes to provide a forwarding 
table for the nodes to use to forward a data packet 
received from the central node. The central node also 
provides updates for the forwarding table to the nodes, so 
As a result, IP traffic may be routed through the fiber 
optic ring network in a manner that provides fast switch- 
ing from a working path to a protection path to minimize 
lost data packets whenever a communication link in the 
working path fails. Additionally, this capability is pro- 55 
vided without requiring each node to have full IP routing 
capability. Because the central node creates and pro- 
vides forwarding tables and forwarding table updates for 



each of the nodes on the fiber optic ring network, the 
individual nodes are not required to have full IP router 
capability thereby reducing complexity and cost. 
[0024] As an additional benefit of the disclosed net- 
work, the forwarding table provides path routes and for- 
warding for the data packets on a packet by packet 
basis. Accordingly, large amounts communication 
resources need not be reserved for protection purposes 
because the invention provides of protection path 
switching for only those data packets whose working 
path route is affected by the communication link failure. 
[0025] The disclosed invention also provides an 
apparatus and a method for creating forwarding tables 
on a packet by packet basis for at least one virtual pri- 
vate network wherein a subscriber is assigned specified 
communication channels or resources for transporting 
the subscriber data. Additionally, a method and an 
apparatus are provided for forwarding data packets 
through the fiber optic ring network in a multicast trans- 
mission scheme wherein a given node receives a data 
packet, outputs it to an external destination, and also 
forwards the packet to another node in the fiber optic 
ring network. For this embodiment, the central node 
generates at least two forwarding tables for each node 
in the fiber optic ring network. 

Brief Description of the Drawings 

[0026] A better understanding of the present inven- 
tion can be obtained when the following detailed 
description of the preferred embodiment is considered 
with the following drawings, in which: 

Figure 1 is a schematic diagram of one technique 
for combining IP and a fiber optic ring 
TDM network to transport IP user traffic 
over a fiber optic ring; 

Figure 2 is a schematic diagram of a plurality of IP 
routers connected in a fiber optic ring for 
transporting IP user traffic over a fiber 
optic ring network; 

Figure 3 is a functional block diagram of a fiber 
optic ring network according to a preferred 
embodiment of the invention; 

Figure 4 is a functional schematic illustrating the 
components of a central ingress node 
according to a preferred embodiment of 
the invention; 

Figure 5 is a functional schematic illustrating the 
components of a node for forwarding data 
packets in a fiber optic ring network 
according to a preferred embodiment of 
the invention; 
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Figure 6 is a flow chart illustrating a method per- 
formed in a central fiber optic ring network 
node for routing data packets in a fiber 
optic ring network according to preferred 
embodiment of the invention; 

Figure 7 is a flow chart that illustrates a method in 
a fiber optic ring network node for forward- 
ing a data packet according to a preferred 
embodiment of the invention; 

Figure 8 is a functional block diagram of a fiber 
optic ring network having a plurality of 
nodes, each having a plurality of forward- 
ing tables to create virtual private net- 
works according to a preferred 
embodiment of the invention; 

Figure 9 is a functional schematic diagram of a 
node having a plurality of forwarding 
tables, each corresponding to a virtual pri- 
vate network according to a preferred 
embodiment of the invention; and 

Figure 10 is a flow chart illustrating a method for 
routing a data packet through a fiber optic 
ring network having a plurality of nodes, 
each having a plurality of forwarding 
tables to create virtual private networks 
according to a preferred embodiment of 
the invention. 

Detailed Description of the Drawings 

Description of a Needed Solution 

[0027] Modern networks are being designed to 
transport user traffic containing varying types of infor- 
mation including voice, image, text, control signals and 
numerical data. The user traffic is routed through 
access multiplexers, gateways (interface devices for 
systems communicating using differing formats), add 
drop multiplexers (ADMs), fiber optic cross connects, 
ATM switches and internet protocol (IP) routers. Multiple 
layers of routing, multiple logical layers of path estab- 
lishment, and different technologies guide the routing 
and paths used for transporting the user traffic. 
[0028] As mentioned before, the internet is a plural- 
ity of networks that are coupled by high capacity data 
transport mediums. One very important data transport 
medium is the fiber optic ring network such as SONET 
or SDH networks (collectively, "fiber optic ring net- 
works). Fiber optic ring networks typically utilize a proto- 
col that includes data packets having a fixed or defined 
length. For example, a SONET network "cell" is a data 
packet that allocates 48 bytes for data and 5 bytes for a 
header. 

[0029] The fiber optic ring network is, today, a dual 



ring fiber optic network that transports optical signals in 
a working path and, at least occasionally, in a protection 
path using time division multiplexing. Because fiber 
optic ring networks will increasingly be used to transport 

5 IP user data as the importance of the internet continues 
to grow, the fiber optic ring networks and IP networks 
must be made to coexist in a compatible and acceptable 
manner. By some estimates, IP traffic will be the most 
common type of traffic transported over fiber optic ring 

10 networks in the next century. 

[0030] Accordingly, there is an increasing need for 
transporting IP over fiber optic ring networks. The inven- 
tors herein have observed that combining IP and TDM 
to meet this need, however, requires level 3 type func- 

15 tionality to be performed in addition to level 1 and level 
2 functionality on the fiber optic ring networks. This 
combination is necessary in order to have a system that 
is able to fully interact with IP Routers and that can 
dynamically make routing decisions on a fiber optic ring 

20 network as communication link problems are detected. 

Potential Solutions 

[0031] Figure 1 is a functional block diagram of a 
25 schematic of a network for transporting IP user traffic 
over a fiber optic ring. Referring now to Figure 1 , central 
IP router 1 00 is connected to deliver and receive IP user 
traffic to and from ADM 104. ADM 104 is coupled to 
transmit and receive user traffic over fiber optic ring 1 08 
30 in a TDM format. Central IP router 100 is coupled to IP 
routers 112, 116 and 1 20 via control lines 114,118 and 
122, respectively, in a star configuration to control the 
routing of the user traffic for which central IP router 100 
was the ingress node. Generally, each of the routers 
35 100, 1 12, 1 16 and 120 are similar in structure. IP router 
1 00 is a "central" IP router for all user traffic for which IP 
router 100 was the ingress point for the fiber optic ring 
network. 

[0032] As may be seen, central IP router 100 also is 

40 connected to the internet to receive internet user traffic 
as well as internet parameter data 1 24 as shown in Fig- 
ure 1. Internet parameter data includes information 
regarding networks and computer systems that are cou- 
pled to the internet as well as path information (e.g., 

45 communication link failures). Central IP router 100 uses 
the internet parameter information to determine IP 
packet routing whenever it receives a packet of data that 
is to be transmitted to a specified location. 
[0033] In operation, central IP router 100 receives 

50 user traffic in IP packet form from, by way of example, 
the Internet and determines where the packet should be 
routed. For those packets that it determines should be 
routed through the fiber optic ring network, central IP 
router 1 00 produces the user traffic to the fiber optic ring 

55 ADM without any knowledge of the fiber optic ring archi- 
tecture or its available paths. Central IP router 100 
merely specifies the destination IP router address and 
allows ADM 1 04 to route the IP packets to the ADM that 
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is coupled to the specified IP router that is specified in 
the IP path routes. Stated differently, central IP router 
1 00 treats the ADM and the fiber optic ring merely as a 
transport layer. 

[0034] One less desirable effect of this configura- 
tion is that the IP router does not receive or evaluate 
information regarding topology (including layer 1 or 
layer 2 failure information) or restoration capability, for 
the fiber optic ring. Stated differently, the layer 3 routing 
functionality of central IP router 100 does not include 
any analysis of layer 1 and layer 2 operations in the fiber 
optic ring. Thus, the layer 3 functionality of central IP 
router 100 only detects a layer 1 failure condition in the 
fiber optic ring whenever user traffic fails to reach a des- 
tination. 

[0035] One advantage of the configuration of Figure 

1 is that it provides for fast switching times in the fiber 
optic ring in the event of a layer 1 or layer 2 failure within 
the ring. A disadvantage is cost because it requires a 
full IP router and an ADM at each node of the fiber optic 
ring in addition to a separate star or mesh network cou- 
pling each IP router in the network to the central IP 
router 100. 

[0036] That the fiber optic ring performs switching 
within its network in response to a failure transparently 
with respect to the IP router suggests that throughput 
redundancy is required. In other words, the capacity of 
the working paths in a fiber optic ring network must be 
duplicated in a protection path to have a system that 
transparently switches user traffic paths whenever a 
communication link failure occurs. It is common, by way 
of example, to have channels of at least 155 Mbps 
capacity to be fully reserved on the protection path for 
corresponding channels on the working path. Thus, 
while the solution of FIG. 1 is advantageous in that pro- 
tection switching occurs quickly at the layer 1 and layer 

2 levels, it is not an economic solution in terms of trans- 
port efficiency. 

[0037] Figure 2 is a schematic diagram of a plurality 
of I P routers connected in a fiber optic ring for transport- 
ing IP user traffic over a fiber optic ring network. Refer- 
ring now to Figure 2, a central IP router 204 is coupled 
to IP routers 208, 212 and 216 via fiber optic ring 220. 
IP router 204 also is coupled to receiver user traffic and 
internet parameter data 124 from an external source 
(e.g., the internet). 

[0038] In operation, central IP router 204 receives 
user traffic and routes it through the fiber ring network of 
IP routers according to IP addresses specified in the 
headers of the IP packets according to TCP/IP formats 
and protocols. One advantage of the network of Figure 
2 is that it is less expensive than the network of Figure 1 
because it does not require the ADMs to route the IP 
user traffic yet it is capable of routing IP user traffic over 
a fiber optic ring network. A disadvantage observed by 
the inventors of this application, however, is that the IP 
routers 204 - 216 of Figure 2 operate at layer 3 of the 
OSI model. Accordingly, in the event of a layer 1 or layer 



2 type of communication link failure, it may take tens of 
seconds or even minutes to detect the failure by the 
layer 3 functionality of IP router 204. Typically, commu- 
nication link failures are detected at layer 3 when the IP 

5 router transmitting an IP packet of user traffic does not 
receive an expected signal. It would be advantageous to 
have a system in which functionality of layers 1 through 

3 are provided in a system capable of responding to fail- 
ures and conditions detected at any layer within fifty mil- 

10 liseconds. 

Description of the Preferred Solutions 

[0039] Figure 3 is a functional block diagram of a 

15 fiber optic ring network according to a preferred embod- 
iment of the invention. Referring now to Figure 3, a cen- 
tral fiber optic ring network node 300 includes a memory 
304 for storing a routing table for specifying routing 
through a fiber optic ring network (and beyond). Addi- 

20 tionally, node 300 includes a memory 308 for storing a 
forwarding table for specifying packet forwarding 
through the fiber optic ring network. The network shown 
in Figure 3 also includes nodes 312, 316 and 320. Each 
of the nodes 300, 312, 316 and 320 are coupled in a 

25 ring topology by fiber optic ring 108 and by fiber optic 
ring 1 1 0. Rings 1 08 and 1 1 0 conduct traffic in circularly 
opposite directions to provide working and protection 
path routing to every node on the fiber optic ring net- 
work. In an alternate embodiment, the nodes are cou- 

30 pled by only one fiber optic ring 108. In this alternate 
embodiment, traffic is conducted in circularly opposite 
directions on the one ring 108. In all subsequent discus- 
sion regarding the fiber optic ring network, both embod- 
iments are included even though only one of these two 

35 embodiments will be described in some instances. 

[0040] Control communications lines 324, 328 and 
332 each couple nodes 312, 316 and 320 to central 
fiber optic ring network node 300 in a star topology. 
Node 300 transmits forwarding tables and table updates 

40 to nodes 312, 316 and 320 (the "forwarding nodes") 
over the control communication lines 324, 328 and 332. 
Upon receiving a table, each of the nodes stores it 
within memory 340 Node 300 also transmits forwarding 
table updates to each of the forwarding nodes over con- 

45 trol communication lines 324, 328 and 332. By way of 
example, Figure 3 shows an update signal 336 being 
transmitted by node 300 to node 320 over control com- 
munication line 332. Each of the forwarding nodes 
updates the forwarding tables in memory 340 upon 

50 receiving update signal 336. 

[0041] Because node 300 determines the routing 
and generates forwarding tables to each of the forward- 
ing nodes, cost and complexity is significantly reduced. 
One reason is that the forwarding nodes do not include 

55 the hardware or software required to be fully functioning 
IP routers. The forwarding tables that are produced to 
the forwarding nodes by node 300 include working path 
and protection path forwarding specifications. In one 
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embodiment, a multi-protocol label switching (MPLS) 
scheme is used to specify the forwarding. In an MPLS 
scheme, logical path definitions are used to direct data 
packets in the fiber optic ring network. 
[0042] In another embodiment, the forwarding 
tables merely specifies output ports and channel 
assignments on the ports for packets received from 
specified input ports on specified channels. In yet 
another embodiment, the forwarding tables merely 
specify the destination node ID for the next communica- 
tion link or a port if the packet is to be output from the 
fiber optic ring network. Accordingly, the forwarding 
tables may be set up in a plurality of different manners 
to achieve the same result. In general however, the cen- 
tral node determines the forwarding for the other nodes 
in the network. Accordingly, the other nodes do not 
require the complexity to be able to function as full IP 
routers. 

[0043] In the MPLS scheme, whenever the central 
node 300 becomes aware from an overhead signaling 
message that a communication link has experienced a 
specified problem, by way of example, either congestion 
or a communication link outage, central node 300 
assigns labels to the data packets it produces on the 
fiber optic ring network to cause some of the data pack- 
ets to be transmitted on the protection path. Not all of 
the packets are then routed on the protection path. Only 
those data packets whose path route is affected by the 
communication link failure are routed on the protection 
path. In general, it is the data packets whose final desti- 
nation on the fiber optic ring network is downstream (on 
the working path) that are assigned labels to cause 
them to be routed through the protection path. 
[0044] In the alternate embodiments, each of the 
forwarding tables includes forwarding information for the 
working paths as well as the protection paths. In the 
embodiments that do not include an MPLS scheme, 
however, additional information may need to be pro- 
vided to the nodes to enable them to determine whether 
to forward a packet along a working path or a protection 
path. 

[0045] Figure 4 is a functional schematic illustrating 
the components of a central ingress node according to 
a preferred embodiment of the invention. Referring now 
to Figure 4, an ingress node 400, for the purposes 
herein, is a node that receives IP traffic that requires 
routing through the fiber optic ring network. In the pre- 
ferred embodiment of the invention, the ingress node 
400 is responsible for determining the path route for a 
data packet through the fiber optic ring network. 
[0046] Central ingress node 400 includes a proces- 
sor 402 that is communicatively coupled to a memory 
404, a storage device 406 and a peripheral bus inter- 
face through a bus 41 0. Peripheral bus interface, in turn, 
is communicatively coupled with network interface 
devices 41 2A, 41 2B, 41 2C, 41 2D and 41 2E. Each of 
these network interface devices are connected, for 
exemplary purposes, to an IP router, an IP node, a first 



ring of a fiber optic ring network, a second ring of a fiber 
optic ring network, and a communication control line, 
respectively. 

[0047] Storage device 406 can be formed of any 

5 one or of a plurality of devices for storing operational 
logic, protocol information, programming steps and 
instructions, and gateway logic to convert signals from 
one protocol to another. By way of example, portions 
406A and 406B are for storing instructions for creating 

10 routing and forwarding tables. Portion 406C is for stor- 
ing computer instructions that specify operational logic 
and communication protocols. For example, portion 
406C includes protocol information for serving as a 
gateway or interface device between the internet and 

15 the fiber optic ring network. Additionally, portion 406C 
includes instructions that specify how and when tables 
and table updates are to be transmitted over the com- 
munication control lines 324, 328 and 332 of Figure 3 
(for example). Finally, portion 406C includes at least two 

20 IDs. Afirst ID is an IP router ID while the second ID is an 
IP node ID. 

[0048] In terms of hardware, storage device 406 
comprises, in the described embodiment, an electro- 
magnetic disk drive that has read/write capability. In 

25 additional embodiments, storage device 406 comprises 
read only memory (ROM) circuits, compact disk (CD) 
ROM devices, Read/Write CDS, tape drives, floppy 
disks (and similar devices), and other known informa- 
tion storage mediums. 

30 [0049] With respect to the forwarding tables that are 
created by processor 402 while executing the corre- 
sponding instructions stored within storage 406, differ- 
ent types of forwarding tables may be created according 
to designer preference. By way of example, a label 

35 switching scheme may be used. Alternatively, however, 
a table may be created that merely utilizes IP identifica- 
tion numbers for specifying how a forwarding node is to 
forward a packet. Thus, while an entire fiber optic ring 
network may have only on IP router ID so as to appear 

40 as only on IP router to other internet devices, each node 
may have a separate IP node ID. 

Memory 404 comprises random access memory (RAM) 
with read/write capability for storing operational infor- 
mation while node 400 is operational and is receiving 

45 power. By way of example, memory portions 404A and 
404B are for storing the routing and forwarding tables, 
respectively, created by processor 402 while executing 
the programming instructions stored in memory portion 
406A of storage device 406. Memory portion 406C is for 

50 storing information relating to network conditions. By 
way of example, if node 400 either determines on its 
own or is informed of a network communication link fail- 
ure, information defining the type of failure and its loca- 
tion are stored in memory portion 406C of memory 406. 

55 [0050] Additionally, information stored within stor- 
age device 406C defining the fiber optic network ring 
node such as the nodes that are electrically present, 
and the communication paths are stored in memory 
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portion 404C for use by processor 402. Additionally, 
memory 404 includes data used by processor 402 while 
executing program steps or computer instructions 
defined in portions 406A, 406B and 406C of storage 
device 406 as well as in other portions of the storage 5 
device. Memory 404 also is for, among other things, 
storing a fiber optic ring failure condition that was deter- 
mined by node 300 or that was indicated in a received 
overhead signal. In terms of hardware characteristics of 
memory 404, different types of memory may be used. 10 
By way of example, memory 404 can comprise 32 bit 
flash program storage, dynamic RAM, static RAM, etc. 
Processor 402 is a standard processing unit formed 
within similar computerized devices and is capable of 
controlling operations of the node 400 according to the 75 
operational logic defined within storage 406. Proces- 
sors that may be used include customized ASIC 
devices, off the shelf processors including common 
commercially available microprocessors and other simi- 
lar devices. 2 o 
[0051] Peripheral bus interface 408 is a standard 
bus interface that allows processor 402 to communicate 
with and control the communications that occur over a 
plurality of network interface devices 412 that are cou- 
pled to peripheral bus interface 408. Network interface 25 
devices 412 are transceivers of various types that are 
coupled to communicate with specific devices. While 
the described embodiment includes a peripheral bus 
interface 408, other known devices may be substituted 
according to system implementation. By way of exam- 30 
pie, a cross connect switch is used in an alternate 
embodiment of the invention. In yet another embodi- 
ment, a demultiplexer is used in place of peripheral bus 
interface 408. 

[0052] The network interface devices of Figure 4 35 
may be formed of different known interface systems. For 
example, they may comprise radio modems, digital sig- 
nal processors, ASICs, T1/E1 interface devices, etc. 
The type of device utilized as a network interface device 
412 is a function of the type of device with which it will 40 
be expected to communicate and can include transceiv- 
ers of all known types. 

[0053] In operation, processor 402 of node 400, in 
the described embodiment, is operable, in conjunction 
with computer instructions in storage device 406, to 45 
detect and respond to the a communication link failure 
or traffic condition (e.g., congestion). Within the 15 milli- 
seconds, processor 402 generates the overhead signal 
indicating a communication link failure or traffic condi- 
tion within fifteen milliseconds of the communication link 50 
failure or condition being detected (collectively "commu- 
nication link failure"). 

[0054] Similarly, in the described embodiment, 
processor 402 is operable, in conjunction with computer 
instructions in storage device 406, to detect and 55 
respond within a 35 millisecond period to a received 
overhead signal used to indicate a failure condition in a 
communication link within the fiber optic ring network. 



Stated differently, the programming instructions within 
storage device 406 are written to cause processor 402 
to initiate protection path routing/forwarding within 35 
milliseconds of receiving the overhead signal. 
[0055] Any known scheme for causing a processing 
unit to respond promptly including an interrupt scheme 
may be used. By way of example, processor firmware 
may be used to generate a flag or interrupt to cause the 
processor to execute a specified routine to initiate pro- 
tection path forwarding/switching. 
[0056] In the described embodiment, processor 
402 first calculates routing tables that are stored in a 
memory portion 404A of node 400 as described below. 
The forwarding tables for each of the nodes are then 
created so that the other nodes will forward user traffic 
at the packet level through the fiber optic ring network 
along path routes that are consistent with those defined 
in the routing tables created by logic device 324. 
[0057] For those embodiments of the invention 
wherein the forwarding tables are created for the nodes 
on the fiber optic ring network in a network that utilize an 
MPLS scheme specify a one to one mapping between 
logical channels. Each logical channel has a unique 
channel Id known as a label. Accordingly, a central node 
is able to control the working path and protection path 
forwarding by selecting the mapping of labels in the for- 
warding tables for each of the nodes. Whether an MPLS 
scheme is used or not, typical fiber optic ring network 
defines a large number of channels that are transmitted 
through a ring. Accordingly, the forwarding tables define 
paths through the fiber optic ring channels. 
[0058] Because common fiber optic ring networks 
utilize a time division multiplex scheme for transmitting 
data packets, a channel having a label as an identifier is 
characterized by the ring on which it is carried, the car- 
rier frequency and the time period at which the data 
packets are transmitted. A data packet in an embodi- 
ment utilizing an MPLS scheme, therefore, is assigned 
a label that implicitly represents an output port, a carrier 
frequency and a time slot. 

[0059] Figure 5 is a functional schematic illustrating 
the components of a node for forwarding data packets in 
a fiber optic ring network according to a preferred 
embodiment of the invention. Referring now to Figure 5, 
a node 500, for the purposes herein, is a node that 
receives IP traffic that requires routing to an external 
node or forwarding through the fiber optic ring network. 
[0060] Node 500 includes a processor 502 that is 
communicatively coupled to a memory 504, a storage 
device 506 and a peripheral bus interface through a bus 
510. Peripheral bus interface, in turn, is communica- 
tively coupled with network interface devices 51 2A, 
512B, 512C, 512D and 512E. Each of these network 
interface devices are connected, for exemplary pur- 
poses, to an IP router, an IP node, a first ring of a fiber 
optic ring network, a second ring of a fiber optic ring net- 
work, and a communication control line, respectively. 
[0061] Storage device 506 can be formed of any 
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one or of a plurality of devices for storing operational 
logic, protocol information, programming steps and 
instructions, and gateway logic to convert signals from 
one protocol to another. By way of example, portion 
506A is for storing computer instructions that define ring 
topology information including the ID numbers of each 
node and, in some embodiments, specific port IDs for 
the nodes of the fiber optic ring network. Portion 506B is 
for storing computer instructions for forwarding data 
packets according to the contents of a forwarding table 
stored in memory. Portion 506C is for storing computer 
instructions that specify operational logic and communi- 
cation protocols. For example, portion 506C includes 
protocol information for serving as a gateway or inter- 
face device between the internet and the fiber optic ring 
network. Additionally, portion 506C includes instruc- 
tions that specify how data packets are to be transmit- 
ted. For example, if an MPLS scheme is used, how label 
swapping is to be performed. If another approach is 
used in a given configuration, portion 506C includes 
corresponding instructions to define logic for forwarding 
the packet. Finally, portion 506C includes at least two 
IDs. A first ID is an IP router ID while the second ID is an 
IP node ID. 

[0062] In terms of hardware, storage device 506 
comprises, in the described embodiment, an electro- 
magnetic disk drive that has read/write capability. In 
additional embodiments, storage device 506 comprises 
read only memory (ROM) circuits, compact disk (CD) 
ROM devices, Read/Write CDs, tape drives, floppy 
disks (and similar devices), and other known informa- 
tion storage mediums. 

[0063] Memory 504 comprises random access 
memory (RAM) with read/write capability for storing 
operational information while node 500 is operational 
and is receiving power. By way of example, memory 
portion 504A is for storing the forwarding table received 
from the central node over the communication control 
line. Portion 504B is for storing a received packet of user 
traffic while the node 500 determines how to forward the 
packet and, in some embodiments, for storing the 
packet while it is manipulated to be transmitted either 
onto the fiber optic ring network or externally to an IP 
node. 

[0064] In terms of hardware characteristics, differ- 
ent types Of memory may be used for memory 504. By 
way of example, memory 504 can comprise 32 bit flash 
program storage, dynamic RAM, static RAM, etc. Proc- 
essor 502 is a standard processing unit formed within 
similar computerized devices and is capable of control- 
ling operations of the node 500 according to the opera- 
tional logic defined within storage 506. Customized 
ASIC devices, as well as off the shelf and common com- 
mercially available microprocessors and other similar 
devices may be used for processor 502. 
[0065] Peripheral bus interface 508 is a standard 
bus interface that allows processor 502 to communicate 
with and control the communications that occur over a 



plurality of network interface devices 512 that are cou- 
pled to peripheral bus interface 508. Network interface 
devices 512 are transceivers of various types that are 
coupled to communicate with specific devices. While 

5 the described embodiment includes a peripheral bus 
Interface 508, other known devices may be substituted 
according to system implementation. By way of exam- 
ple, a cross connect switch and a demultiplexer are 
used in alternate embodiments of the invention instead 

10 of peripheral bus interface 508. 

[0066] The network interface devices of Figure 5 
may be formed of different known interface systems. For 
example, they may comprise radio modems, digital sig- 
nal processors, ASICs, T1/E1 interface devices, etc. 

15 The type of device utilized as a network interface device 
512 is a function of the type of device with which it will 
be expected to communicate and can include transceiv- 
ers of all known types. 

[0067] In operation, processor 502 of node 500, in 
20 the described embodiment, is operable, in conjunction 
with computer instructions in storage device 506, to 
receive a forwarding table transmitted by a central node 
400, by way of example, and to store the forwarding 
table I memory portion 504A of memory 504. By way of 
25 example, a central node 400 transmits the forwarding 
table over a control and communication line that is cou- 
pled to user interface device 51 2E. Thus, peripheral bus 
interface 508 communicates with user interface device 
and 51 2E and processor 502 to store the forwarding 
30 table in memory 504. Similarly, processor 502 receives 
updates to the forwarding table and operates to modify 
the contents of memory 504A according to computer 
instructions in storage 506B. 

[0068] Because common fiber optic ring networks 
35 utilize a time division multiplex scheme for transmitting 
data packets, a channel having a label as an identifier is 
characterized by the ring on which it is carried, the car- 
rier frequency and the time period at which the data 
packets are transmitted. A data packet in an embodi- 
40 ment utilizing an MPLS scheme, therefore, is assigned 
a label that implicitly represents an output port, a carrier 
frequency and a time slot. However, even in embodi- 
ments in which an MPLS scheme is not used, processor 
502 outputs data packets through, by way of example, 
45 network interface 51 2C onto the first fiber optic ring at a 
specified frequency and at a specified time slot accord- 
ing to information stored in the forwarding table within 
memory portion 504A. 

[0069] Figure 6 is a flow chart illustrating a method 
so performed in a central fiber optic ring network node for 
routing data packets in a fiber optic ring network accord- 
ing to preferred embodiment of the invention. Referring 
now to Figure 6, the node, by way of example, node 300 
of Figure 3, receives a signal 124 of Figure 1 that 
55 includes internet parameter data (step 602). In one 
embodiment, every IP router periodically generates net- 
work status requests that are transmitted to all IP rout- 
ers and nodes that are electrically present and coupled 
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to the Internet. In other embodiments, every IP router 
and node periodically and automatically generates a 
status signal that is transmitted to all other Ip nodes and 
routers. Regardless of the type of scheme that is used, 
however, a node such as node 300 of Figure 3 periodi- 
cally receives signals transmitted by nodes and routers 
coupled to the internet. It is through these signals that 
central node 300 may determine and construct routing 
tables that are used for directing user traffic to specific 
internet locations. 

[0070] Thus, central node 300 uses the internet 
parameter data to create routing tables for routing IP 
user traffic and to create forwarding tables for user traf- 
fic that is to be transported over the fiber optic ring net- 
work (step 604). As a part of creating these routing 
tables, central node 300 also examines the fiber optic 
ring network conditions. The ring conditions, by way of 
example, communication link failures, are used to cre- 
ate the routing tables. 

[0071] Central node 300 then generates and trans- 
mits a forwarding table to each node on the fiber optic 
ring network for the IP user traffic (step 606). In the 
described embodiment, the tables are transmitted to the 
nodes through a control communication line that cou- 
ples each node to the central node 300. In an alternate 
embodiment, the tables are produced to the nodes 
through the fiber optic ring network. The forwarding 
tables define the channels for conducting user traffic for 
the working and protection paths for user traffic being 
originated. For example, each packet will have a direc- 
tion working path or protection path), a frequency and a 
time slot specified for each communication link in the 
fiber optic ring network through which it is to be trans- 
ported. 

[0072] In those embodiments in which an MPLS 
scheme is used, the forwarding tables create a one to 
one label mapping. Accordingly, a received data packet 
will have a label that has a corresponding label in the 
forwarding table. The corresponding label identifies the 
channel on which the data packet is to be transmitted. 
Thus, the label defines the ring (assuming a two ring 
system), the frequency and the time slot in which the 
data packet is to be transmitted. The forwarding tables 
are, in the described embodiment, extracted from the 
routing tables. 

[0073] After the central node has transmitted work- 
ing path and protection path forwarding tables to all of 
the nodes, it must maintain the information within the 
tables to keep it current. Accordingly, every time central 
node receives a signal 336 that defines new Internet 
nodes or network conditions that require changes to the 
routing paths defined in the routing/forwarding tables, 
node 300 updates its tables and sends updates to the 
nodes on the fiber optic ring network (step 608). 
[0074] Node 300 also updates the working and pro- 
tection paths for any data packets that require transport 
through a failed communication link within the fiber optic 
ring network to reach an internet address. Accordingly, 



depending upon the type of failure condition, a new 
working path and protection path may be established to 
reach a specified node for which the routing is affected 
by the communication link failure in the fiber optic ring 
5 network. 

[0075] After the forwarding table updates (if neces- 
sary) and tables have been sent to the nodes on the 
fiber optic ring network, the fiber optic ring network is 
ready to transport user traffic. Accordingly, when central 

w node 300 receives IP user traffic, it converts the IP user 
traffic to TDM format and transmits it onto the fiber optic 
ring network (step 610). The nodes on the fiber optic 
ring network then forward the converted IP user traffic 
as specified in their forwarding tables. 

15 [0076] Figure 7 is a flow chart that illustrates a 
method in a fiber optic ring network node for forwarding 
a data packet according to a preferred embodiment of 
the invention. Referring now to Figure 7, a node 
receives a forwarding table from a central fiber optic ring 

20 network node 300 (step 702). The node then stores the 
forwarding table. On occasion, the node may receive 
updates for the tables from the central node (step 704). 
The updates will typically only be received, however, if 
there is a condition on the internet or on the fiber optic 

25 ring network that requires routing changes to be made 
to the forwarding tables. These update signals are used 
to update the stored forwarding tables. 
[0077] The node may also occasionally receive 
fiber optic ring status signals (step 706). For example, a 

30 signal may be received indicating that a communication 
link in the fiber optic ring has failed or is congested. The 
node stores the information as a part of maintaining ring 
status information. 

[0078] The node also receives data packets of user 
35 traffic that are to be forwarded through the fiber optic 
ring network (step 708). Whenever such a data packet 
is received, the node examines the contents of the for- 
warding table in relation to specific information within or 
known about the received user traffic. For one example, 
40 if an MPLS scheme is being used, the label within the 
header of the received data packet contains a corre- 
sponding label within the forwarding table. In such a 
case, the node examines the forwarding table to find the 
corresponding replacement label, and then inserts the 
45 replacement label in the header of the data packet. 
Thereafter, the node forwards the data packet according 
to the new label (step 710). 

[0079] In other embodiments, the node examines 
specified destination information (e.g., destination node 

50 ID) within the header to determine whether the packet of 
user traffic is to be output or forwarded. By way of exam- 
ple, the forwarding table includes, for this embodiment, 
either an indication of a specified port of the node 
through which the packet is to be output to the internet 

55 or an indication of the channel through which the packet 
of user traffic is to be transmitted. 

[0080] Figure 8 is a functional block diagram of a 
fiber optic ring network having a plurality of nodes, each 
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having a plurality of forwarding tables to create virtual 
private networks according to a preferred embodiment 
of the invention. Referring now to Figure 8, a fiber optic 
ring network includes a central ingress node 800 that is 
communicatively coupled to nodes 804, 808 and 812 by 
way of fiber optic ring 816 and fiber optic ring 820. As 
may be seen, ring 81 6 conducts user traffic in the direc- 
tion shown at 824. Ring 820, on the other hand, con- 
ducts user traffic in the direction shown at 828. While 
the embodiment shown in Figure 8 comprises two rings, 
namely rings 816 and 820, alternate embodiments 
include a one ring system that is operable to conduct 
user traffic in two directions, namely, in the directions 
shown at 824 and 828. 

[0081] As may be seen from examining each of the 
nodes in Figure 8, each node includes a plurality of 
memories within the node. Each of the memories repre- 
sents an embodiment in which a plurality of so called 
virtual private networks are formed. In a virtual private 
network, a subscriber is allocated a path and supporting 
resources for the subscriber's exclusive use. Accord- 
ingly, in such an embodiment, a unique forwarding table 
is created for the subscriber that defines the data packet 
forwarding for that particular subscriber. Thus, referring 
again to Figure 9, a node having three tables illustrates 
the presence of at least two virtual private networks. 
The third forwarding table, therefore, is either for all 
other user traffic or, perhaps, merely for a third sub- 
scriber of a virtual private network. As may be seen 
from examining node 812, each forwarding table speci- 
fies whether the user traffic data packet is to be for- 
warded through the fiber optic ring network, whether it is 
to be output to an external internet destination, by way 
of example, to an external IP node, or whether it is to be 
output and forwarded (in a multicast transmission). 
[0082] In a multicast transmission, a data packet is 
received and converted for outputting to a device as well 
as forwarded on through the network. In general, a mul- 
ticast scheme is a scheme for broadcasting a message 
to a plurality of nodes. There are many different imple- 
mentations that can be used to effectuate a multicast 
transmission. For example, a data packet may be trans- 
mitted having a specified signal within the header to 
inform the node that it is a multicast signal. 
[0083] For this embodiment, either a specified bit 
may be used to reflect that a signal is a multicast signal, 
or, within the forwarding table, a unique entry may exists 
to cause both outcomes to occur. 
[0084] For example, if the header carries a unique 
destination ID that reflects that the signal is a multicast 
signal, the node is able to determine that the signal is to 
be output as well as forwarded. In this case, the node 
examines the forwarding table to know what output 
ports and forwarding paths are to be used. Thus, by way 
of example, if node 812 receives a multicast packet on 
line 824, it will not only output the signal to 
[0085] Figure 9 is a functional schematic diagram of 
a node having a plurality of forwarding tables, each cor- 



responding to a virtual private network according to a 
preferred embodiment of the invention. Referring now to 
Figure 9, a node 900 includes a plurality of memory por- 
tions for storing a plurality forwarding tables, one for 
5 each virtual private network (VPN). More specifically, 
memory portion 904 stores a first VPN forwarding table. 
Memory portion 908 stores a second VPN forwarding 
table. Memory portion 912 stores a third VPN forward- 
ing table. 

10 [0086] Figure 9 also includes a plurality of logical 
switches 916, 920 and 924. Each of the switches 916, 
920 and 924 include an input to receive data packets for 
specified paths on the fiber optic ring network. Each of 
the switches also includes a pair of outputs. One output 

15 is coupled to a specified IP node external to the fiber 
optic ring network. The other output is coupled to a 
specified path on the fiber optic ring network. Finally, 
each of the memories 904, 908 and 912 are coupled to 
a selector input of each of the logical switches 91 6, 920 

20 and 924, respectively. 

[0087] The embodiment of Figure 9 is functional in 
nature. It should be understood that the actual sche- 
matic of node 900 resembles the circuitry shown for the 
node of Figure 5. One purpose of Figure 9 is illustrate 

25 how the forwarding tables in a memory of a node having 
VPNS relate to the routing and forwarding of packets 
through a node. Thus, as may be seen, a processor, 
similar to the one of Figure 5, examines computer 
instructions within a storage device to determine a cor- 

30 responding memory portion holding a corresponding 
forwarding table for a specified VPN according to the 
identity of the path from which a data packet was 
received. Accordingly, the processor 502 examines the 
corresponding forwarding table to determine whether 

35 the packet is to be output to a device on the internet 
having a IP node ID or whether it is to be forwarded on 
a specified path of the VPN to another node on the fiber 
optic ring network. 

[0088] Figure 1 0 is a flow chart illustrating a method 
40 for routing a data packet through a fiber optic ring net- 
work having a plurality of nodes, each having a plurality 
of forwarding tables to create virtual private networks 
according to a preferred embodiment of the invention. A 
node initially receives at least one forwarding table. In 
45 an embodiment comprising VPNs, the node receives a 
plurality of forwarding tables, one for each VPN (step 
1002). The node, optionally, receives updates to the for- 
warding tables to reflect routing and forwarding changes 
according either to internet or fiber optic ring topology 
so changes resulting from failures and from actual 
changes to the configuration of the networks (step 
1004). 

[0089] Once a node is set up with forwarding tables, 
it is ready and begins to receive user traffic in packet 
55 form (step 1006). On a packet by packets basis, the 
node must determine from examining a forwarding table 
how to forward or route the packet. If the fiber optic ring 
network includes VPNs, the node determines the 
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appropriate forwarding table according to the path ID 
from which the packet was received (step 1008). 
[0090] In addition to determining the appropriate 
and corresponding forwarding table, the node also 
examines the header to determine if it includes an 
egress port address that is a port of the node (step 
1010). In alternate embodiments, the node determines 
from examining the corresponding forwarding table 
whether to forward the packet onto the fiber optic ring 
network or whether to route the packet out to the inter- 
net. By way of example, an entry in the forwarding table 
would define an egress port ID or a forwarding path ID 
for the given data packet. The packet either is then 
routed to an external destination (step 1012) or is for- 
warded onto the fiber optic ring network (step 1014). If 
the network includes VPNs, then the packet is for- 
warded according to the corresponding forwarding table 
for the data packet. 

[0091] While the invention is susceptible to various 
modifications and alternative forms, specific embodi- 
ments thereof have been shown by way of example in 
the drawings and detailed description. It should be 
understood, however, that the drawings and detailed 
description thereto are not intended to limit the invention 
to the particular form disclosed, but on the contrary, the 
invention is to cover all modifications, equivalents and 
alternatives falling within the spirit and scope of the 
present invention as defined by the claims. For exam- 
ple, the invention includes an embodiment wherein 
each node on the network serves as a central node and 
provides forwarding tables for each of the other nodes 
for the TCP/IP packets it receives via its connection to 
the internet. 

Claims 

1 . A fiber optic ring network node connected to a fiber 
optic ring, comprising: 

a processor; 

an interface device coupled to the processor 
and to the fiber optic ring network; and 

a storage device for storing computer instruc- 
tions coupled to the processor, the computer 
instructions for prompting the processor to gen- 
erate packet level routing tables. 

2. The node of claim 1 wherein the computer instruc- 
tions are also for prompting the processor to gener- 
ate packet level forwarding tables for each node on 
the fiber optic ring network to define packet level 
path routes wherein the packet level path routes 
specified by the forwarding tables are consistent 
with a subset of the packet level path routes defined 
in the routing table. 



3. The node of claim 1 wherein the computer instruc- 
tions are also for prompting the processor to trans- 
mit the forwarding tables to each of the nodes on 
the fiber optic ring network. 

5 

4. The node of claim 1 wherein the computer instruc- 
tions are also for prompting the processor to trans- 
mit forwarding table updates to each of the nodes 
on the fiber optic ring network to reflect correspond- 

w ing changes in the routing tables. 

5. A fiber optic ring network node connected to a fiber 
optic ring, comprising: 

15 a processor; 

an interface device coupled to the processor 
and to the fiber optic ring network; and 

20 a storage device for storing computer instruc- 

tions coupled to the processor, the computer 
instructions for prompting the processor to 
store a forwarding table within a memory por- 
tion when the forwarding table is received from 

25 a central node. 

6. The node of claim 5 wherein the computer instruc- 
tions are also for prompting the processor to update 
the stored forwarding tables whenever an update 

30 signal is received from a central node. 

7. The node of claim 5 wherein the computer instruc- 
tions are also for prompting the processor to exam- 
ine the contents of the forwarding table whenever a 

35 packet is received so that the processor may deter- 

mine whether and how to forward the data packet. 

8. The node of claim 5 wherein the computer instruc- 
tions are also for prompting the processor to gener- 

40 ate a plurality of forwarding tables for each node 

wherein at least forwarding table is for defining the 
forwarding and routing for a virtual private network. 

9. The node of claim 5 further including a plurality of 
45 memory portions for storing at least one VPN for- 
warding table. 

10. A method in a fiber optic ring network central node 
connected to a first and a second fiber optic ring, 

50 comprising: 



creating and updating routing/forwarding tables 
based upon internet parameters and ring con- 
ditions; and 

sending a customized forwarding table to each 
node of a plurality of nodes on the fiber optic 
ring network. 



12 
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1 1 . The method of claim 1 0 further comprising the step 
of receiving internet parameter data wherein the 
internet parameter data is used to create the rout- 
ing/forwarding tables. 

5 

12. The method of claim 1 0 further comprising the step 
of receiving fiber optic ring network parameter data 
wherein the parameter data is used to create the 
routing/forwarding tables. 

10 

13. The method of claim 1 0 further comprising the step 
of sending updates for each of the forwarding 
tables, wherein the updates reflect changes in the 
internet parameters or fiber optic ring network that 
require forwarding path route changes. 15 

1 4. The method of claim 1 0 further comprising the step 
of receiving a data packet from the fiber optic ring 
network. 

20 

1 5. The method of claim 1 4 further comprising the step 
of replacing a label found within a header of the 
data packet with a new label wherein the new label 
defines the channel on which the data packet will 

be transmitted. 25 
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